General
-
Target
gogis.bat
-
Size
6.9MB
-
Sample
240416-vt9jpshd9x
-
MD5
a65e873839228c5b453d6effa5d14d16
-
SHA1
40be429e0e6b41061f3291d10e720eaebf32eda1
-
SHA256
59c388b975d290fa525ffefe5aaecb011219ebd3121a7e79e913d980fb7af951
-
SHA512
84ec1da7d5f5fe236c7fbe960b69d99ae0b6d3fe83844cd2bf3128508d39ad1de35f17dcb101e06fb25b155a806885bb5d6d095fbf3e0a3c729c678fa200f850
-
SSDEEP
24576:ClNzlllllllllllllllllllllllllllllllllllllllllllllllllllllllllllg:/
Static task
static1
Behavioral task
behavioral1
Sample
gogis.bat
Resource
win7-20240221-en
Malware Config
Extracted
asyncrat
Venom RAT + HVNC + Stealer + Grabber v6.0.3
Default
194.48.251.169:4449
wmdekgrrot
-
delay
1
-
install
false
-
install_folder
%AppData%
Targets
-
-
Target
gogis.bat
-
Size
6.9MB
-
MD5
a65e873839228c5b453d6effa5d14d16
-
SHA1
40be429e0e6b41061f3291d10e720eaebf32eda1
-
SHA256
59c388b975d290fa525ffefe5aaecb011219ebd3121a7e79e913d980fb7af951
-
SHA512
84ec1da7d5f5fe236c7fbe960b69d99ae0b6d3fe83844cd2bf3128508d39ad1de35f17dcb101e06fb25b155a806885bb5d6d095fbf3e0a3c729c678fa200f850
-
SSDEEP
24576:ClNzlllllllllllllllllllllllllllllllllllllllllllllllllllllllllllg:/
-
Async RAT payload
-
Blocklisted process makes network request
-